Reputation: 157
Security Warning when running scripts - Unblock-File not unblocking file
I suddenly started to recceive this warning when running any script on my computer:
Run only scripts that you trust. While scripts from the internet can be useful, this script can potentially harm your computer...
Screenshot:
The files are not blocked.
I have
- checked in File Explorer > Properties.
- used the
Unblock-Filecmdlet to unblock as well. - checked streams using cmdlet:
Get-Content -Path '\\Path\Script.ps1' -Stream Zone.Identifier. No Streams found. - used Streams.exe from Sysinternals:
streams.exe -d \\Path\Script.ps1. No files with streams found.
Also tried to remove streams with Powershell:
Remove-Item -Path \\Path\Script.ps1 -Stream Zone.Identifier
Of course without success as there are no streams.
Execution policy is Unrestricted.
When I run Set-ExecutionPolicy Bypass it works without warning. It should, however, also work when it's unrestricted.
I honestly don't know what's going on.
Upvotes: 7
Views: 25834
Answers (5)
Reputation: 27423
This is the only thing that worked for me, adding the exact hostname of the share:
reg add "hkcu\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\school.edu\mdt.sys" /f /v * /t REG_DWORD /d 1
And with execution policy unrestricted, I was running:
powershell -executionpolicy bypass -file script.ps1
Upvotes: 0
Reputation: 5254
The correct registry keys, name and value, to treat all local sites as part of the intranet zone, are:
Keys:
HKLM\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap
HKCU\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap
Name: IntranetName
Type: DWORD
Value: 1
You can set this via PowerShell for the local machine (in an elevated prompt) like this:
Set-ItemProperty -Path "HKLM:\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap" -Name "IntranetName" -Type DWord -Value 1
See Intranet Sites: Include all local (intranet) sites not listed in other zones for more information about the group policy.
Upvotes: 1
Reputation: 126
After searching i found someone with similar issues and it was explained that Classic UNC paths will work without prompting to unblock the file:
\\Servername\Path...
However FQDN paths are not seen as safe by default and will prompt:
\\Servername.foo.local\Path...
My own testing confirms this to be correct as removing the .foo.local from the path causes the Unblock-File prompts to stop.
Upvotes: 11
Reputation: 1016
LGPE > gpedit.msc
Computer Configuration > Administrative Templates, > Windows Components, > Internet Explorer>expand Internet Control Panel. Security Page > Intranet Sites: Include all local (intranet) sites not listed in other zones, and then click Properties. Click Enabled.
Turn on automatic detection of the intranet, and then click Properties. Click Disabled, and then click OK.
or registry
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\"UNCAsIntranet" = "0"
Upvotes: 0
Reputation: 17
PS doesnot allow Scripts to run on system ENV by default. you need to set the policy to unrestricted or remote signed Use: Set-ExecutionPolicy Remotesigned OR Set-ExecutionPolicy Unrestricted
Open the PS console and type this and press enter and then try running your script.
Upvotes: -3
Related Questions
- Powershell script on network drive still giving security prompt even after running Unblock-File
- PowerShell bug “execution of scripts is disabled on this system.”
- Unblock a file with PowerShell?
- Ignore 'Security Warning' running script from command line
- Why do I need "Unblock-File" even though execution policy is RemoteSigned?
- How to get rid of security warning in Batch/Powershell
- Unblock-File - Why do I need to open a new session?
- Powershell script - suppress security popup
- How disable the security warning
- Warning while executing powershell script